Skip to main content
  1. Home
  2. Computing
  3. News

The U.S. government is worse at cybersecurity than just about everyone else

By

Cybersecurity Act of 2012 SECURE IT Act
Image used with permission by copyright holder
Looking for another reason to mistrust the government? Its shoddy cybersecurity practices may be just the ammunition you need. New data from security risk benchmarking startup SecurityScorecard suggests that when it comes to safe practices online, U.S. federal, state, and local government agencies rank dead last in comparison to 17 major private industries, including transportation, retail, and healthcare. The report examined the “overall security hygiene and security reaction time” of government institutions, paying special attention to NASA, the FBI, and the IRS, all of which were hacked earlier this year.

Topics of interest included vulnerability to malware infections, exposure rates of passwords, and susceptibility to social engineering, among other criteria.

Recommended Videos

The results were none too complimentary for our government. “Across all industries surveyed by SecurityScorecard,” the report notes, “U.S. government organizations received the lowest security scores. SecurityScorecard tracked 35 data breaches among all U.S. government organizations between April 2015 and April 2016.”

Related

The biggest deficiencies were found within three categories of security; Malware Infections, Network Security, and Software Patching Cadence. Shockingly, 90 percent of state organizations scored an “F” in Software Patching Cadence, and 80 percent received the same score in Network Security.

But the worst offender of all was NASA, who received the lowest score among all 600 U.S. government organizations surveyed. Joining the bottom feeders were the U.S. Department of State, and the IT systems of Connecticut, Pennsylvania, and Washington.

The Obama administration has certainly made attempts to address the overarching insufficiency of cybersecurity practices currently in play across a range of agencies. President Obama has asked for $19 billion from Congress to improve tech defenses, including $3.1 billion to modernize the IT infrastructure at a number of federal agencies.

“With serious data breaches making headlines on what seems like a weekly basis, our team felt compelled to turn a spotlight on government agencies and determine which of them are demonstrating a commitment to securing their infrastructure and which are falling short,” said Dr. Luis Vargas, senior data scientist at SecurityScorecard. “The data we uncovered clearly indicates that while some are improving their security postures, too many are leaving themselves dangerously exposed to risks and vulnerabilities, especially at the larger federal level.”

Editors’ Recommendations

Topics
Lulu Chang
Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
U.S. to ban Kaspersky antivirus software over alleged Russian links
The keyboard and trackpad on the new Surface Laptop.

The Biden administration is banning the use of Kaspersky Lab cybersecurity software throughout the U.S. over fears that the Russian government may be interfering with its operations, the U.S. Commerce Department said on Thursday.

U.S. officials have long had concerns about the safety of Kaspersky’s software, claiming that Russian law gives Vladimir Putin’s government access to Kaspersky’s systems and therefore data on all of its customers.

Read more
AMD just answered the question everyone’s been asking about Ryzen 9000
AMD announcing its Zen 5 CPUs at Computex.

It's not surprising that AMD released its Ryzen 9000 CPUs at Computex 2024. The company confirmed its Zen 5 chips would arrive this year, and Computex is the perfect place to release them. AMD answered two big questions about Ryzen 9000 in Taipei, however: When does Ryzen 9000 come out, and how long will AM5 last?

Let's start with that last question. AMD committed to supporting the AM5 platform through 2025 originally, but with the launch of Ryzen 9000, it's recommitting. The company says it will support AM5 through at least 2027, and likely beyond that point. Everything works together, too. New Ryzen 9000 parts will work with older 600-series chipsets, while older Ryzen 7000 CPUs will work with the new 800-series chipset (more on that shortly).

Read more
T-Mobile is buying one of the largest carriers in the U.S.
Cell phone tower shooting off pink beams with a 5G logo next to it.

If you were impacted by T-Mobile's latest price hike and were looking for an alternative carrier, we have some bad news — T-Mobile is buying US Cellular. For those unaware, U.S. Cellular is the fifth-largest carrier in the U.S. despite being a regional carrier based mostly in the Chicago area. Unlike mobile virtual network operators (MVNOs) like Metro by T-Mobile or Visible, which piggyback on a parent carrier’s network, US Cellular has its own towers and stores.

The deal would see T-Mobile pay $4.4 billion to take over US Cellular’s wireless customers, stores, and 30% of its spectrum assets. It includes a combination of cash and T-Mobile assuming $2 billion of U.S. Cellular’s debt. US Cellular will keep control of 4,400 of its towers and 70% of its spectrum portfolio, but T-Mobile will extend its leases for 600 US Cellular towers and sign new long-term leases on 2,015 more towers. In a conference call about the deal, T-Mobile also committed to hiring a significant number of U.S. Cellular associates.

Read more